McAfee says new security solution delivers ‘unprecedented situational awareness’
By Digital News Asia October 31, 2013
- Essential for security analysts to swiftly identify attacks, determine root cause and remediate threat
- New solution integrates two McAfee products to enhance visibility and streamline incident response
SECURITY vendor McAfee has announced what it described as the industry’s first ‘endpoint aware’ security information event management (SIEM) solution that adds real time system state information to enhance situational awareness and streamline incident response.
The solution brings together the big security data management capabilities of McAfee Enterprise Security Manager (ESM) with the endpoint insight of McAfee Real Time, the company said in a statement.
SIEM event data is combined with the proactive ability to immediately query, collect and analyse extensive endpoint context, including running processes, files, as well as system and security configuration.
Thwarting advanced threats demands greater situational awareness, McAfee said.
According to the 2013 Verizon Data Breach Report, 69% of breaches went from initial compromise to data exfiltration within hours. Conversely, over a third of breaches took weeks to months resolve.
To minimise the damage of attacks and protect the business, it is essential that security analysts are able to swiftly identify attacks, determine the root cause and remediate the threat.
“McAfee is continuing to lead the market for situational awareness by redefining security intelligence and turning the tables on attacks,” said Ken Levine, senior vice president and general manager, Security Management at McAfee.
“We understand this need unlike anyone else and we’re arming our customers with the intelligence, speed and context to win the battle against advanced threats,” he added.
McAfee ESM integrated with McAfee Real Time goes beyond passive monitoring and provides endpoint aware security analytics about what’s happening within systems at the minute that it’s occurring, the company claimed.
Having this real time information provides clarity into any breach, and speeds up response time needed to resolve advanced threats, McAfee added.
McAfee ESM and McAfee Real Time are expected to be available in the fourth quarter. For more information, visit http://www.mcafee.com/siem.
McAfee outlines strategy for the future of business security
HP gets serious about security, controversial Autonomy deal bearing fruit
For more technology news and the latest updates, follow @dnewsasia on Twitter or Like us on Facebook.